This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft File: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft (raw, json) Hash identifier: HKHqIJW6xaExh0aOSLiY9GosPJQKmT7VorwiIZZv9l0= Subject key identifier: 8B:F0:76:4C:96:A6:9B:47:51:E5:EC:98:C7:23:69:BC:56:0C:E5:61 Authority key identifier: 6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE Certificate issuer: /CN=A91CE978/serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Certificate serial: 35AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft Manifest number: 354A Signing time: Sat 20 Dec 2025 14:49:12 +0000 Manifest this update: Sat 20 Dec 2025 14:49:12 +0000 Manifest next update: Sat 27 Dec 2025 14:49:12 +0000 Files and hashes: 1: ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl (hash: DknFAliW/VPlBMh/3J6p0rcn3b83YFtEnkSAR6VvQQY=) 2: 64E2B628BE4911EE897F291BC4F9AE02.roa (hash: oj9MA2Xl79Ulu/1U7XExVD59vw2GZhJkFrHTogIDTCg=) 3: E6F73E22B99E11EEBF189021C4F9AE02.roa (hash: 1mDu3Q1bdiSa3axtc15ZDTGlc4zW4OxSySLPwHbTbvE=) 4: D1EE6884F06C11EEA5BAA656C4F9AE02.roa (hash: 8K4hb6GJHcWswysfKKK+VFXlsdhKy8EjS5fIz+8731Q=) 5: 29F7413CBB6011EEB59E5D81C4F9AE02.roa (hash: ZqgeyChgSkuAuEy8E4XBqCcFOmGTEjV9SXx7odN3pv4=) 6: DDF4B0D2F08C11EEB70A1F76C4F9AE02.roa (hash: 3IhKk2ns73ug1cPcItokkvNYGQWI9rs7b4nF6YtsTSc=) 7: D79607EEDCDD11EE85DBEB12C4F9AE02.roa (hash: vltJ7Buw53igWVIfCgs9blss6VeKEkgF9l7xhGZDnwo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:49:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13743 (0x35af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE978, serialNumber=6A1E4F72847EB3699522C93D26773F0DF8396EBE Validity Not Before: Dec 20 14:49:12 2025 GMT Not After : Dec 27 14:49:12 2025 GMT Subject: CN=6946b768-2e11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7c:ee:9f:ee:6f:cc:54:b1:7b:57:8d:fe:9e: 96:71:dc:1a:0f:ea:f0:60:17:9c:8c:90:4e:42:78: 9e:7a:d4:21:d6:28:a0:00:fa:f1:97:d7:9d:8d:0d: f8:28:df:61:7b:de:89:76:0f:78:14:1d:fa:c3:30: 26:03:c2:30:ee:7f:27:ff:91:29:5a:6b:9a:6d:e3: 1b:1d:98:09:8b:2e:50:38:54:16:70:0d:3b:87:df: b3:96:2f:f8:18:81:f6:d6:af:0a:36:b8:ef:4a:db: 0b:00:17:c2:a7:07:4a:d4:f5:ec:52:89:48:58:ed: b8:ae:8e:d4:d4:44:1d:22:34:e7:a3:97:ac:2e:b2: 11:53:a1:bc:fa:d5:e6:f6:1a:0e:00:ae:84:1d:a7: 37:a7:fb:9a:0b:9a:b9:ff:c4:29:b6:d9:93:4f:5d: 09:27:08:85:2c:47:63:4d:cc:d9:25:85:a2:57:d6: 72:64:21:ce:09:70:d6:17:81:da:2e:85:3d:e7:ca: 45:5b:ad:6b:8d:3e:59:a3:59:d5:6d:1e:6f:dc:b8: 77:63:93:8b:6e:02:df:3e:44:47:67:fc:57:89:f3: 50:d0:7d:dc:ef:d1:bb:30:6d:bb:f3:41:aa:52:09: 8d:05:c4:4e:c2:89:ed:49:c5:57:9f:0e:82:b8:80: 01:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F0:76:4C:96:A6:9B:47:51:E5:EC:98:C7:23:69:BC:56:0C:E5:61 X509v3 Authority Key Identifier: keyid:6A:1E:4F:72:84:7E:B3:69:95:22:C9:3D:26:77:3F:0D:F8:39:6E:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE978/3223F35E1D9811E28A8C2E8208B02CD2/ah5PcoR-s2mVIsk9Jnc_Dfg5br4.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:98:c5:2f:73:de:e8:db:e4:33:c0:6f:1c:06:98:0a:3c:27: ff:38:5a:c6:98:90:de:cc:19:4d:08:01:3d:48:97:fc:af:a1: dc:2f:66:ea:92:35:eb:30:03:13:95:a0:cc:b5:67:87:af:f5: ae:62:aa:24:fa:9a:a4:0a:b7:dd:a1:3d:69:e5:83:6a:4c:da: e3:1a:bb:cd:39:8e:2a:b0:ef:31:e4:85:58:bf:6e:13:9e:2b: 73:7e:f4:d5:1c:81:fe:b7:f6:5c:ec:d0:0b:a8:1c:0a:c8:87: 6c:fc:71:db:e7:d6:ef:cd:0f:6e:13:72:6b:bb:93:b3:96:7f: bd:73:fc:26:7f:4c:ac:bb:e9:ac:20:8d:f7:8b:ca:e5:c7:a3: 4d:b9:cf:18:f2:f1:c4:f6:58:26:ad:5e:7c:ca:1d:c8:e9:c4: 5d:a4:86:6a:d2:fe:eb:b8:11:6a:11:1f:47:a4:53:1e:3f:b6: a1:13:0b:97:dc:3c:1a:ab:4b:e2:b0:b1:61:a7:c0:2d:3e:fb: 43:d6:d7:2f:6c:a6:1e:c3:3b:f6:84:f3:e5:a8:35:7c:ef:7c: bb:c3:08:0d:fb:84:73:24:65:7b:a0:bf:10:ef:ab:21:c6:f0: 14:56:d2:9b:1a:14:62:42:47:9f:0a:cc:ce:e5:42:aa:42:62: 4e:72:9c:50 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNa8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5NzgxMTAvBgNVBAUTKDZBMUU0RjcyODQ3RUIzNjk5NTIyQzkzRDI2NzczRjBE RjgzOTZFQkUwHhcNMjUxMjIwMTQ0OTEyWhcNMjUxMjI3MTQ0OTEyWjAYMRYwFAYD VQQDDA02OTQ2Yjc2OC0yZTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHzun+5vzFSxe1eN/p6WcdwaD+rwYBecjJBOQnieetQh1iigAPrxl9edjQ34 KN9he96Jdg94FB36wzAmA8Iw7n8n/5EpWmuabeMbHZgJiy5QOFQWcA07h9+zli/4 GIH21q8KNrjvStsLABfCpwdK1PXsUolIWO24ro7U1EQdIjTno5esLrIRU6G8+tXm 9hoOAK6EHac3p/uaC5q5/8QpttmTT10JJwiFLEdjTczZJYWiV9ZyZCHOCXDWF4Ha LoU958pFW61rjT5Zo1nVbR5v3Lh3Y5OLbgLfPkRHZ/xXifNQ0H3c79G7MG2780Gq UgmNBcROwontScVXnw6CuIABRQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIvwdkyW pptHUeXsmMcjabxWDOVhMB8GA1UdIwQYMBaAFGoeT3KEfrNplSLJPSZ3Pw34OW6+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTk3OC8zMjIzRjM1RTFE OTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMybVZJc2s5Sm5jX0RmZzVi cjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FoNVBjb1ItczJtVklzazlKbmNfRGZnNWJyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTk3OC8zMjIzRjM1RTFEOTgxMUUyOEE4QzJFODIwOEIwMkNEMi9haDVQY29SLXMy bVZJc2s5Sm5jX0RmZzVicjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAkmMUvc97o2+QzwG8cBpgKPCf/OFrGmJDezBlNCAE9SJf8r6HcL2bq kjXrMAMTlaDMtWeHr/WuYqok+pqkCrfdoT1p5YNqTNrjGrvNOY4qsO8x5IVYv24T nitzfvTVHIH+t/Zc7NALqBwKyIds/HHb59bvzQ9uE3Jru5Ozln+9c/wmf0ysu+ms II33i8rlx6NNuc8Y8vHE9lgmrV58yh3I6cRdpIZq0v7ruBFqER9HpFMeP7ahEwuX 3Dwaq0visLFhp8AtPvtD1tcvbKYewzv2hPPlqDV873y7wwgN+4RzJGV7oL8Q76sh xvAUVtKbGhRiQkefCszO5UKqQmJOcpxQ -----END CERTIFICATE-----Generated at Sat Dec 20 16:19:03 2025 by rpki-client